store_info.php

用PHP和MSSQL开发的sspace商城系统

<?php
	/*
	+-------------------------------------------
	|
	|   Technology of Wane netware
	|   ========================================
	|   Powered by wan-e.net inc 
	|   (c) 2004 wane.net Power Services
	|   http://www.wan-e.net
	|   ========================================
	|   Web: http://www.wan-e.net
	|
	+-------------------------------------------
	|   Autohr	:	wsfuyibing
	+-------------------------------------------
	*/
	if (!$RIGHT['STORE'])
	{
		$function->showmsg('javascript:history.go(-1)',$LANG_CP_INFO['ACCESS_DENIED'],'10');
	}
	elseif ($infosubmit && $type=='infostoresubmit')
	{
		$query=$db->query("SELECT uid,username from {$tablepre}storeinfo WHERE uid='$wane_uid'");
		if (empty($storename))	{$function->clickback($LANG_CP_INFO[UNNAME]);}
		elseif (strlen($storename)>50)	{$function->clickback($LANG_CP_INFO[NAMELONG]);}
		elseif (empty($truename))	{$function->clickback($LANG_CP_INFO[UNTRUENAME]);}
		elseif (strlen($truename)>12)	{$function->clickback($LANG_CP_INFO[TRUENAMELONG]);}
		elseif (!is_numeric($sidcode) || (strlen($sidcode)!=15 && strlen($sidcode)!=18))	{$function->clickback($LANG_CP_INFO[UNSIDCODE]);}
		elseif (empty($address))	{$function->clickback($LANG_CP_INFO[UNADDRESS]);}
		elseif (empty($zipcode) || !is_numeric($zipcode) || strlen($zipcode)!=6)	{$function->clickback($LANG_CP_INFO[UNZIPCODE]);}
		elseif (empty($phone))	{$function->clickback($LANG_CP_INFO[UNPHONE]);}
		else
		{
			if ($imgway && is_uploaded_file($userfile))
			{
				require $wane_root.'globals/class_upload.php';
				$upload	=	new	waneupload;
				$storeimg	=	$upload->upload_image($userfile_name,$userfile);
			}
			else
			{
				$storeimg	=	"$spimg";
			}		
			
			if (!empty($deleteimg) && $storeimg!=$deleteimg)
			{
				$function->delete_file($deleteimg);
			}
			
			if ($db->num($query))		
			{
				$sql="update {$tablepre}storeinfo
                    set
                       storename='$storename',
					   sendtext='".$function->wane_str($sendtext,252)."',
                       truename='$truename',
                       sidcode='$sidcode',
                       address='$address',
                       zipcode=$zipcode,
                       bank='$bank',
                       bankid='$bankid',
                       phone='$phone',
                       email='$email',
                       qq='$qq',
                       msn='$msn',
                       url='$url',
                       storeimg='$storeimg',
                       context='$context'
                    where 
                       uid='$wane_uid'";
			}
			else
			{
	            $sql="insert into {$tablepre}storeinfo
                 (uid,username,storename,sendtext,truename,sidcode,address,zipcode,bank,bankid,phone,email,qq,msn,url,storeimg,context,addtime)
                 Values
                 ('$wane_uid','$wane_user','$storename','".$function->wane_str($sendtext,252)."','$truename','$sidcode','$address','$zipcode','$bank','$bankid','$phone','$email','$qq','$msn','$url','$storeimg','$context','".time()."')";
			}
			$db->query($sql);
			$function->showmsg($default_url.'index.php?action=memcp&type=infostore',$LANG_CP_INFO[STORE_SUCCESS]);
		}
	}
	else
	{
		$query=$db->query("SELECT * FROM {$tablepre}storeinfo WHERE uid='$wane_uid' limit 1");
		
		if ($db->num($query))		
		{
			$row=$db->row($query);
			$tpl->set_var(
				array(
					'SQL_STORENAME'		=>	$row[storename]	,
					'SQL_TRUENAME'		=>	$row[truename],
					'SQL_SIDCODE'		=>	$row[sidcode],
					'SQL_ADDRESS'		=>	$row[address],
					'SQL_ZIPCODE'		=>	$row[zipcode],
					'SQL_BANK'			=>	$row[bank],
					'SQL_BANKID'		=>	$row[bankid],
					'SQL_PHONE'			=>	$row[phone],
					'SQL_EMAIL'			=>	$row[email],
					'SQL_QQ'			=>	$row[qq],
					'SQL_MSN'			=>	$row[msn],
					'SQL_URL'			=>	$row[url],
					'SQL_STOREIMG'		=>	$row[storeimg],	
					'SQL_CONTEXT'		=>	$row[context],
				)
			);
		}
	}
	
?>